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Detailed Description 

Claims 

Fulltext Word Count: 34891 
English Abstract 

To answer the security needs of the market, a preferred embodiment was 
developed. A preferred embodiment provides real-time network security 
vulnerability assessment tests, (516) possibly complete with recommended 
security solutions. External vulnerability assessment tests (516) can 
emulate hacker methodology in a safe way and enable study of a network 
(1002) for security openings, thereby gaining a true view of risk level 
without affecting customer operations. Because this assessment can be 
performed over the Internet, both domestic and worldwide corporations 
benefit. A preferred embodiment's physical subsystems combine to form a 
scalable holistic system that can be able to conduct tests for thousands 
of customers any place in the world. The security skills of experts can 
be embedded into a preferred embodiment system and automated the test 
process to enable the security vulnerability test to be conducted on a 
continuous basis for multiple customers at the same time. A preferred 



embodiment can reduce the work time required for security practices of 
companies from three weeks to less than a day, as well as significantly 
increase their capacity. 
French Abstract 

Pour repondre aux besoins du marche en matiere de securite inf ormatique, 
on a mis au point un mode de realisation prefere permettant de realiser 
des tests devaluation de vulnerabilite de securite reseau en temps reel 
(516) et, eventuellement , d'obtenir des solutions de securite sous forme 
de recommandations . Ces tests devaluation de vulnerabilite externe (516) 
consistent a emuler la methodologie des pirates inf ormatiques en toute 
securite, et permettent d' analyser un reseau (1002) en vue d'y determiner 
les ouvertures de securite, d'ou la possibilite d'obtenir une image 
realiste du niveau de risque sans influer sur les operations client. 
Etant donne que cette evaluation peut etre realisee sur Internet, 
1' invention s' applique aux societes aussi bien nationales 

qu ' internationales . Un systeme physique de ce mode de realisation prefere 
se combine de maniere a former un systeme holistique extensible 
permettant de realiser des tests pour des milliers de clients a n'importe 
quel endroit dans le monde. Les connaissances des experts en matiere de 
securite peuvent etre integrees sur une base continue pour de nombreux 
clients en meme temps. Un mode de realisation prefere permet de reduire 
le temps de travail requis pour les mesures de securite des entreprises 
de trois semaines a moins d'un jour, d'ou une augmentation considerable 
de leur rendement . 
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Claims 

Claim 

... and a second test, each of I 0 which is adapted to return system 
environment information regarding the system 
under test ; 

wherein the first test is executed before the second test ; and 
wherein the first test differs from the . second test in that the 
second test is more specific to the system under test based on 
information gained from the first test. 
5 

2 The network security testing apparatus of claim 1, 
wherein no tests are performed on the system under test... 
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Claims 
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English Abstract 

An information recording medium (100) is provided, which comprises a 
plurality of recording layers (104, 102) and a first disc information 
area (111) for storing parameters relating to access to the plurality of 
recording layers and formats relating to the plurality of recording 
layer. The first disc information area is provided in a first recording 
layer (104) which is one of the plurality of recording layers. 

French Abstract 

Cette invention concerne un support d ' enregistrment d ' information 
comprenant une pluralite de couches d ' enregistrement et une premiere zone 
d' information de disque pour le stockage de parametres concernant 1 ' acces 
a une pluralite de couches d' enregistrement et de formats en rapport avec 
cette pluralite de couches d ' enregistrement . La premiere zone 



d' information de disque se trouve dans une premiere couche 
d'enregistrement faisant partie d'une pluralite de couches 
d' enregistrement . 
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Detailed Description 

Detailed Description 

risks, a buffer area in which no 
intended use is defined is desirably provided contiguously 

before and after the test recording area of each recording 
- 48 

layer. It is also pref erable that a plurality of def ect list 
areas are provided before and after the test recording area 
as shown in Figure 9. By providing def ect list areas bef ore 
and after the test recording area of each recording layer , 
the risk of damaging all data in a 
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Abstract (Basic) : WO 200066776 Al 

NOVELTY - Pipelining a disease-specific diagnostic algorithm on an 
n-bit data word (A) stored in memory, is new. 

DETAILED DESCRIPTION - Pipelining a disease-specific diagnostic 
algorithm on an n-bit data word (A) stored in memory, is new. The 
method comprises : 

(a) defining clinical tests for the diagnosis; 

(b) defining each test on (A) , and providing a normal value for 
each test; 

(c) sequentially reading out each. normal value from (A) ; 

(d) upon receipt of a clinical test value, deciding which test is 
to be performed next; 

(e) receiving the next test of (A) ; 

(f) computing the next part of the algorithm, using the next test 
and the most recent calculated value of a computation of an earlier 
part of the algorithm to produce a second clinical test value; and 

(g) if necessary, repeating steps (e) and (f) until all tests of 
(A) have been done. 

The final computed value for the last test is a value for the 
complete diagnosis. 

An INDEPENDENT CLAIM is also included for an apparatus for 
performing the novel method, comprising: 

(a) a memory storing the n-bit data words; 

(b) means for sequentially reading out each of m clinical tests of 
the n-bit data from the memory, where m is more than one; and 

(c) m clinical tests, each programmed to compute a different 
clinical test of the diagnostic algorithm using a different one of the 



m tests to produce a corresponding result, each test after the first 
test receives the result from a prior stage, and the result from a 
prior stage and that from the last clinical test form a complete 
diagnosis of a disease obtained by the n-bit data word. 

USE - The method is used for diagnosis of a wide range of diseases, 
including acid-fast bacteria (particularly for tuberculosis) , anemia, 
cardiac risk , hepatitis B, breast or prostatic cancers, Epstein-Barr 
virus, thyroid function, autoimmune disease, serum proteins, 
urinalysis, human immunodeficiency virus, syphilis and thrombophilia 
(claimed) . 

ADVANTAGE - After performing the first test, the system is 
self -monitoring, i.e. it responds to previous test results to 
decide the nature and sequence of additional tests , so that 
unnecessary tests are not performed. It provides rapid, complete and 
cost-effective results. 
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Abstract (Basic) : EP 339861 A 

The microprocessor control circuit (206) receives a match signal 
from comparator (204) if the ID code of a received paging signal 
matches a code stored in ID memory (2 05-) . In response to the match 
signal, an alarm display is activated (2061) to alert the user to 
reception of a paging signal. 

During factory testing, a detection circuit (213) detects actuation 
of a switch (212) and signals to the control microprocessor. The test 
parameters for the pager are set and message codes stored in the memory 
(211) are erased. This avoids the risk of the test results being 
confused with previously -stored messages. Following testing , the 
switch (212) is reset to normal mode and subsequently the detection 
circuit and control microprocessor function to erase test messages 
stored in the memory and the pager is reset to a stand-by state. 

ADVANTAGE - Battery need not be removed to erase test messages 
stored in pager during testing, whilst erasure of test messages averts 
risk of user becoming confused by these messages. 
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Abstract (Basic) : WO 200261434 A2 

NOVELTY - Screening for test compounds capable of modulating the 
level of expression of an anergy marker comprising comparing 
expression levels of an anergy marker in cell samples prior to 
providing a test compound to a first sample of cells, and after 
providing a test compound to a second sample of cells, where a 
modulated level of expression in the second sample, indicates that the 
test compound is capable of modulating the expression level, is new. 

DETAILED DESCRIPTION - Screening for test compounds capable of 
modulating the level of expression of an anergy marker comprising 
comparing expression levels of an anergy marker (I) in cell samples 
prior to providing a test compound to a first sample of cells, and 
after providing a test compound to a second sample of cells, where a 
modulated level of expression in the second sample, indicates that the 
test compound is capable of modulating the expression level, is new. 
(I) comprises: 

(a) anergy marker polynucleotides selected from fully defined 
identifiers given in the specification, e.g. TC14671gat, TC16364at, or 
murine T cell receptor V beta chain; 

(b) anergy marker polynucleotides selected from fully defined 
UniGene identifiers given in the specification, e.g. Mm. 638, 13146, or 
7398; or 

(c) human anergy marker polynucleotides, given in the 
specification, e.g. Hs, 284279, 170843, or human GRG4, human jumonji. 



INDEPENDENT CLAIMS are also included for the following: 

(1) screening for test compounds capable of modulating the activity 
of an anergy marker protein encoded by the anergy marker; 

(2) screening for test compounds capable of inhibiting an immune 
disorder; and 

(3) screening test compounds for inhibitors of an immune disorder 
in a subject. 

ACTIVITY - Cytostatic; Antidiabetic; Antiarthritic ; Antirheumatic- 
Osteopathic; Neuroprotective; Antiinflammatory; Dermatological ; 
Immunosuppressive; Antithyroid; Antipsoriatic ; Antiulcer; 
Ophthalmological ; Antiasthmatic ; Antiallergic ; Antianemic . 

No biological data is given. 

MECHANISM OF ACTION - Calcineurin inhibitor; NFAT antagonist. 

USE - The methods and test compounds are useful for diagnosing, 
treating and preventing immune disorders such as T cell disorders, B 
cell disorders, autoimmune disorders, infectious disorders, 
proliferative disorders, transplant rejection and cancer. The immune 
disorder can be diabetes mellitus, rheumatoid arthritis, juvenile 
rheumatoid arthritis, osteoarthritis, psoriatic arthritis, multiple 
sclerosis, encephalomyelitis, myasthenia gravis, systemic lupus 
erythematosus, autoimmune thyroiditis, atopic dermatitis, eczematous 
dermatitis, psoriasis, Sjogren's Syndrome, Crohn's disease, aphthous 
ulcer, iritis, conjunctivitis, keratoconjunctivitis, ulcerative 
colitis, asthma, allergic asthma, cutaneous lupus erythematosus, 
scleroderma, vaginitis, proctitis, drug eruptions, leprosy reversal 
reactions, erythema nodosumleprosum, autoimmune uveitis, allergic 
encephalomyelitis, acute necrotizing hemorrhagic encephalopathy, 
idiopathic bilateral progressive sensorineural hearing loss, aplastic 
anemia, pure red cell anemia, idiopathic thrombocytopenia, 
polychondritis, Wegener's granulomatosis, chronic active hepatitis, 
Stevens-Johnson syndrome, idiopathic sprue, lichen planus, Graves' 
disease, sarcoidosis, primary biliary cirrhosis, uveitis posterior, 
interstitial lung fibrosis, graf t-versus-host disease, and allergy. 
Cancer is selected from lung cancer, breast cancer, lymphoid cancer, 
gastrointestinal cancer, genitourinary tract cancer, pharynx cancer, 
colon cancer, renal-cell carcinoma, prostate cancer, testicular cancer, 
non-small cell carcinoma of the lung, cancer of the small intestine, 
cancer of the esophagus, fibrosarcoma, myxosarcoma, liposarcoma, 
chondrosarcoma, osteogenic sarcoma, chordoma, angiosarcoma, 
endotheliosarcoma, lymphangiosarcoma, lymphangioendotheliosarcoma, 
synovioma, mesothelioma, Ewing ' s tumor, leiomyosarcoma, 
rhabdomyosarcoma, colon carcinoma, pancreatic cancer, breast cancer, 
ovarian cancer, prostate cancer, squamous cell carcinoma, basal cell 
carcinoma, adenocarcinoma, sweat gland carcinoma, sebaceous gland 
carcinoma, papillary carcinoma, papillary adenocarcinomas, 
cyst adenocarcinoma, medullary carcinoma, bronchogenic carcinoma, renal 
cell carcinoma, hepatoma, bile duct carcinoma, choriocarcinoma, 
seminoma, embryonal carcinoma, Wilms' tumor, cervical cancer, 
testicular tumor, lung carcinoma, small cell lung carcinoma, non-small 
cell lung carcinoma, bladder carcinoma, epithelial carcinoma, glioma, 
astrocytoma , medul loblas toma , craniopharyngioma , ependymoma , pinealoma , 
hemangioblastoma, acoustic neuroma, oligodendroglioma, meningioma, 
melanoma, neuroblastoma, and retinoblastoma, preferably breast cancer, 
renal cell carcinoma, melanoma, lymphoma, and multiple myeloma. (All 
claimed) . The kits are useful for determining the prognosis for 
long-term survival of subjects having an immune disorder. 
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Abstract (Basic) : US 6279113 Bl 

NOVELTY - A list of attack signature profiles descriptive of 
attack signature linked with network intrusion attempts is stored. A 
subset of attack signature profiles is accessed corresponding to a 
network object. The attack signature profiles included in the subset, 
are executed to determine if the data addressed to network object is 
linked with a network intrusion attempt. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are also included for the 
following: 

(a) Network-based dynamic signature inspection system; 

(b) Computer system 

USE - For detecting intrusion attempts on computer network 
connecting computer, facsimile and modem. 

ADVANTAGE - Since all the seven layers of OSI model are 
monitored, an attack based in any of the layers can be detected. As the 
processor and attack signature profiles are mutually independent, the 
intrusion detection system (IDS) is efficiently customized according to 

security requirement of a network. Since network monitoring 
responsibilities are allocated to multiple monitoring devices at 
multiple sites on the network, IDS provides high performance on large 
networks . 

DESCRIPTION OF DRAWING (S) - The figure shows the process flow for 
method of processing attack signature profile from instruction cache. 
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Abstract (Basic) : 

A list of attack signature profiles descriptive of attack 
signature linked with network intrusion attempts is stored. A subset 
of attack signature profiles is accessed corresponding to a network 
object. The attack signature profiles included in the subset, are 
executed to determine if the data addressed to network. . . 

a) Network-based dynamic signature inspection system. . . 

...Since all the seven layers of OSI model are monitored, an attack 

based in any of the layers can be detected. As the processor and attack 

signature profiles are mutually independent, the intrusion detection 
system (IDS) is efficiently customized according to security 
requirement of a network. Since network monitoring responsibilities are 
allocated to multiple monitoring devices at... 

. . .The figure shows the process flow for method of processing attack 

signature profile from instruction cache... 
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Abstract (Basic) : US 7010495 Bl 

NOVELTY - The method involves combining analytic models comprising 
risk and marketing models , in sequential order using targeting 
engine to generate marketing campaign data. The combined models are 
evaluated using on line analytical processing (OLAT) structures that 
segment gain charts to discover where model combination is under 
performing, and evaluating performance of model combination over time 
to discover user defined trends. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
system for evaluating marketing campaign data. 

USE - For evaluating marketing campaign data. 

ADVANTAGE - Increases the efficiency of marketing campaign and 
identifies risk such as delinquency and fraud. 

DESCRIPTION OF DRAWING (S) - The figure shows a block diagram of the 
marketing system. 

marketing system (20) 
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Method for increasing efficiency of marketing campaigns using targeting 
engine, involves combining models in determined sequential order to 
determine initial customer group for defining target group 
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Abstract (Basic) : US 7003476 Bl 

NOVELTY - The sequential order for combining predicted customer 
profile with financial related models embedded within, is determined 
using target engine. The models are combined in determined order that 
maximizes customers in high profit end, to determine initial customer 
group defining target group. The profitability baseline for marketing 
campaign is determined and the campaign is directed towards the target 
group . 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
system for increasing efficiency of marketing campaigns. 

USE - For increasing efficiency of marketing campaigns to segments 
of potential customers using targeting engine. 

ADVANTAGE - Facilitates identifying potential sale candidates for 
marketing campaigns. Increases the efficiency of marketing campaigns in 
identifying risks such as delinquency and fraud. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the targeting engine. 

marketing system (20) 
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Real estate time sequential risk management system sequentially 
evaluates fluctuation of rent income and calculates risk management 
parameter based on rent profit price probability distribution 
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Abstract (Basic) : JP 2005258506 A 

NOVELTY - The CPU calculates the probability distribution of the 
rent profit price by making the rent and the vacancy rate into a random 
variable based on the updated rent income volatility, updated using the 
correlation coefficient corresponding to the rent fluctuation between 
the tenants . The CPU calculates the risk management parameter based 
on the profit price probability distribution. 

USE - For risk management of real estate properties such as 
office buildings. 

ADVANTAGE - Ensures efficient, time sequential risk management of 
the real estate properties. 

DESCRIPTION OF DRAWING (S) - The figure shows a flowchart of the 
real estate time sequential risk management method. (Drawing includes 
non-English language text) . 
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Abstract (Basic) : US 20050125434 Al 

NOVELTY - The method involves partitioning a dataset into a 
training set, a validation set and a number of subsets. An estimated 
learning model for the dataset is developed by developing a learning 
model for one subset. An ensemble model of the dataset is progressively 
formed by sequentially developing another learning model for a 
successive one of the subsets, until a desired indication of 
termination has been reached. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are also included for the 
following : 

(A) an apparatus for processing an inductive learning model for a 
dataset 

(B) a system to process an inductive learning model for a dataset 

(C) a signal-bearing medium with a program of machine-readable 
instructions executable by a digital processing apparatus to perform a 
method of processing an inductive learning model for a dataset. 

USE - Used for processing an inductive learning model that is 
utilized for credit card fraud detection, intrusion detection, charity 
donation, security and exchange, loan approval, animation and car 
design, for a dataset e.g. credit card dataset, adult dataset and 
donation dataset. 

ADVANTAGE - The method allows a user to determine whether the time 
and expense of continuing to develop a complete model would be cost 
effective or whether to stop the processing and enter a new set of 
model parameters to re-evaluate a new strategy for the learning model 
development . 

DESCRIPTION OF DRAWING (S) - The drawing shows a flowchart of a 
method for processing an inductive learning model, 
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Message exchange payment transactions having coupons forming transaction 
client agreement with server receiving validation and multiple 
validations carried out with transaction passwords. 
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Abstract (Basic) : FR 2814622 Al 

NOVELTY - The line transaction method has a coupon (IC) carrying 
for each transaction a client agreement. The condition necessary for 
the transaction is that the server receives the validation agreement. A 
second condition is necessary for validation of the transaction 
agreement is that a number of validations must be achieved. The client 
agreement has a number of transactions (NTi) , with transaction codes 
(CTi) which are passwords or keys. The client agreements are submitted 
to the validation server simulated or sequentially in a variable 
order, a number of exchanges forming the transaction. 

USE - Transaction across a line especially payments with a number 
of message exchanges and having server validation. 

ADVANTAGE - The process is simple without needing any modification 
to the client terminal guaranteeing the level of security adapted to 
the different needs and allowing certification of all parts of the 
transaction . 

DESCRIPTION OF DRAWING (S) - The figure shows a view of the 
transaction coupon 

number of transactions (NTi) 
transaction codes (CTi) 
pp; 43 DwgNo 1/5 

Title Terms: MESSAGE; EXCHANGE; PAY; TRANSACTION; COUPON; FORMING; 

TRANSACTION; CLIENT; AGREE; SERVE; RECEIVE; VALID; MULTIPLE; CARRY; 

TRANSACTION; PASSWORD 
Derwent Class: T01; W01 

International Patent Class (Main) : H04L-009/32 
File Segment: EPI 



31/5/9 (Item 9 from file: 350) 

DIALOG (R) File 3 50:Derwent WPIX 

(c) 2006 The Thomson Corp. All rts . reserv. 

011690779 **Image available** 

WPI Acc No: 1998-107689/199810 

XRPX Acc No: N98-086670 

Telecommunication control apparatus - uses control indication with 
sequence number in operation that requires data transfer confirmation, 
and control indication without sequence number in operation that does not 
require data transfer confirmation 

Patent Assignee: HITACHI JOHO NETWORK KK (HITA-N) ; HITACHI LTD (HITA ) 

Number of Countries: 001 Number of Patents: 001 

Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

JP 9331369 A 19971222 JP 96150698 - A 19960612 199810 B 

Priority Applications (No Type Date) : JP 96150698 A 19960612 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
JP 9331369 A 5 H04L-029/08 

Abstract (Basic) : JP 9331369 A 

The apparatus (1) has several communication paths (61-6n) which can 
be changed between a communication controller (2) and a CCU (3). Data 
transfer between the communication controller and CCU is confirmed by 
providing a sequence number in a control indication sent from the 
communication controller to the CCU. The control indication with added 
sequence number and the control indication in which sequence number is 
not added are provided in a main control indication. 

A classification, which expresses the existence of added sequence 
number to the control indication, is provided. The control indication 
with sequence number is used in an operation which requires sequential 

security and data transfer confirmation . The control indication 
without sequence number is used in an operation which does not require 
data transfer confirmation. 

ADVANTAGE - Improves operation efficiency between communication 
controller and CCU, resource use efficiency of CCU. Reduces processing 
load in generating control data. Reduces memory area needed in storing 
control data. 

Dwg.1/3 

Title Terms: TELECOMMUNICATION; CONTROL; APPARATUS; CONTROL; INDICATE; 

SEQUENCE; NUMBER; OPERATE; REQUIRE; DATA; TRANSFER; CONFIRM; CONTROL; 

INDICATE; SEQUENCE; NUMBER; OPERATE; REQUIRE; DATA; TRANSFER; CONFIRM 
Index Terms/Additional Words: COMMUNICATION; CONTROL; UNIT 
Derwent Class: W01 

International Patent Class (Main) : H04L-029/08 

File Segment: EPI 



Set Items Description 

51 2950015 NETWORK? ? OR EXTRANET? ? OR INTERNET? ? OR INTRANET? ? OR 

LAN OR WAN OR* WLAN 

52 2433527 SECURITY OR VULNERABLE OR VULNERABILITY OR SUSCEPTIBLE OR - 

SUSCEPTIBILITY OR RISK? ? 

53 6562084 TEST OR TESTS OR TESTED OR TESTING OR TESTER? ? 

54 2552065 DIAGNOSTIC? ? OR DIAGNOSE? ? OR DIAGNOSING OR DIAGNOSIS 

55 11545892 SIMULATE? ? OR SIMULATING OR SIMULATION? ? OR MODEL? ? 

56 27 6307 S2 (5N) (ASSESS OR EVALUAT? OR EXAMIN? OR INVESTIGAT? OR MO- 

NITOR? OR ANALY?E? ? OR ANALY?ING OR ANALYSIS OR ESTABLISH? - 
OR CONFIRM? ? OR CONFIRMED OR CONFIRMING OR CONFIRMATION OR V- 
ERIFY? ? OR VERIFIED OR VERIFICATION) 

57 34486 (S3 OR S4 OR S5 OR S6 )( 5N) (SEQUENTIAL? OR AFTER ( 2 W)' (ANOTHER 

OR OTHER) ) 

58 292476 (SECOND OR 2ND OR SECONDARY OR ANOTHER OR ADDITIONAL OR N- 

EXT OR FOLLOW? ? OR FOLLOWING OR SUBSEQUENT? OR AFTER OR FURT- 
HER OR MORE) (2W) (S3 OR S4 OR S5 OR S6) 

59 228834 (S3 OR S4 OR S5 OR S6) (3N) (PREVIOUS? OR PRIOR OR BEFORE OR 

PRECEDING OR EARLIER) 

510 18580 (S3 OR S4 OR S5 OR S6) (3N) ((MORE OR INCREAS? OR PROGRESSIV? 

OR INCREMENT?) (2W) (SPECIFIC? OR DETAIL?) OR NARROW?) 

511 425864 (S3 OR S4 OR S5 OR S6) (5N) (LEVEL? ? OR LAYER? ? ) 

512 1435 (S3 OR S4 OR S5 OR S6) (5N) (SUBCATEGORY OR SUBCATEGORIES OR 

SUBCLASS??) 

513 6677 S8 (10N) S9 

514 50502 SI (5N) S2 

515 0 S13 AND S14 

516 63754 SI (10N) S2 

517 2 S13 AND S16 

518 0 S17 NOT PY>2001 

519 686 (S10 OR Sll OR S12) AND S16 

520 536 (S10 OR Sll OR S12) AND S14 

521 0 S20 AND S13 

522 0 S19 AND SIGNITURE? ? 

523 24 S20 AND S8 

524 7 S23 NOT PY>2001 

525 6 RD (unique items) 

526 35 S7 AND S14 

527 35 S26 NOT S25 

528 .8 S27 NOT PY>2001 

529 7 RD (unique items) 

File 8:Ei Compendex(R) 1970-2006/ Jun W3 

(c) 2006 Elsevier Eng. Info. Inc. 
File 35 :Dissertation Abs Online 1861-2006/ Jun 

(c) 2006 ProQuest Inf o&Learning 
File 65: Inside Conferences 1993-2 006/ Jun 28 

(c) 2006 BLDSC all rts. reserv. 
File 2:INSPEC 1898-2006/ Jun W3 



(c) 2006 Institution of Electrical Engineers 
File 94: JICST-EPlus 1985-2006/Mar W4 

(c)2006 Japan Science and Tech Corp(JST) 
File 111:TGG Natl . Newspaper Index(SM) 1979-2006/ Jun 19 

(c) 2006 The Gale Group 
File 6:NTIS 1964-2006/ Jun W3 

(c) 2006 NTIS, Intl Cpyrght All Rights Res 
File 144: Pascal 1973-2006/ Jun Wl 

(c) 2006 INIST/CNRS 
File 434:SciSearch(R) Cited Ref Sci 1974-1989/Dec 

(c) 1998 Inst for Sci Info 
File 34:SciSearch(R) Cited Ref Sci 1990-2006/ Jun W4 

(c) 2006 Inst for Sci Info 
File 62:SPIN(R) 1975-2006/Apr W2 

(c) 2006 American Institute of Physics 
File 99: Wilson Appl . Sci & Tech Abs 1983-2006/May 

(c) 2006 The HW Wilson Co. 



File 95:TEME-Technology & Management 1989-2006/ Jun W4 

(c) 2006 FIZ TECHNIK 
File 56: Computer and Information Systems Abstracts 1966-2006/ Jun 

(c) 2006 CSA. 

File 57 : Electronics & Communications Abstracts 1966-2006/ Jun 
(c) 2006 CSA. 

File 60: ANTE: Abstracts in New Tech & Engineer 1966-2006/ Jun 
(c) 2006 CSA. 



25/5/3 (Item 1 from file: 6) 

DIALOG (R) File 6 :NTIS 

(c) 2006 NTIS, Intl Cpyrght All Rights Res. All rts . reserv. 

2197063 NTIS Accession Number: ADA388773/XAB 

Simulation Model for Managing Survivability of Networked Information 
Systems 

(Final rept) 

Moitra, S. D. ; Konda, S. L. 

Carnegie-Mellon Univ., Pittsburgh, PA. Software Engineering Inst. 

Corp. Source Codes: 005343014; 416208 

Report No.: CMU/SEI-2000-TR-021 ; ES-TR-2000-020 

Dec 2000 47p 

Languages: English 

Journal Announcement: USGRDR0116 

Product reproduced from digital image. Order this product from NTIS by: 
phone at 1-800-553-NTIS (U.S. customers); (703)605-6000 (other countries); 
fax at (703)605-6900; and email at orders@ntis.gov. NTIS is located at 5285 
Port Royal Road, Springfield, VA, 22161, USA. 

NTIS Prices: PC A04/MF A01 

Country of Publication: United States 

Contract No. : F19628-95-C-0003 

In this paper the authors develop a model to evaluate the tradeoffs 
between the cost of defense mechanisms for networked systems and the 
resulting expected survivability after a network attack. The model consists 
of three submodels. The first submodel simulates the occurrence of attacks 
or incidents. The second submodel simulates the impact of an attack on 
the system. This depends on the type of ..attack and the defense mechanism 
installed in the system. The third submodel assesses the survivability of 
the system which depends on the degree of its degradation after the attack. 
By varying the level of defense in the simulation , we examine how this 
expected survivability changes with the defense level. Since costs are 
assumed to increase with the strength of the defense system, we can derive 
a cost/survivability curve that managers can use to decide on the 
appropriate level of security for their organizations. We have also 
explored the sensitivity of expected survivability to various parameters of 
the model, such as, the mix of attack types and the rate of occurrence of 
incidents. SUBJECT TERMS 15. NUMBER OF PAGES survivability, network 
systems, transition probabilities, 44 defense mechanisms, incident types. 
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Abstract: For the evaluation of effects of switching operations or 
simulation of line-, transformer- and generator outages the influence of 
interconnected neighbor networks is modelled by network equivalents in the 
process computer. The basic passive conductivity model is produced by 
sequential reduction and adapted to fit the active network behavior. The 
reduction routine uses the admittance matrix, sparse technique and optimal 
ordering; it suits process computer applications- 10 refs. In German. 
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Abstract: This paper presents a new technique for steady-state security 
assessment, based on the computation of an explicit description of the set 
of secure states. Steady-state security is defined as the ability of a 
system to withstand the occurrence of any one of a set of postulate 
contingencies without any thermal overloading. The standard method of 
sequential contingency testing has many conceptual and practical 
limitations. The procedure is designed to overcome these. After defining an 
appropriate operating space, a region is constructed bounded by a set of 
hyperplanes with the property that any given power injection pattern that 
falls inside the region is guaranteed to be steady-state secure. The 
specific form of the security region will depend on the network 
structure, the set of postulated contingencies, and the thermal limits on 
individual line flows. Both line outages and generator outages are 
considered. The security region, which is "the end product of the algorithm, 
can become a powerful tool in a variety of power system operation and 
planning applications, e.g. , on-line security monitoring, corrective 
rescheduling, and transmission expansion planning. After a discussion of 
some computational considerations for large-scale systems, the paper 
concludes with the results of some numerical studies performed on a sample 
system. 
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Mobile Ad-hoc networking (MANET) is an important emerging technology. 
As recent several security incidents remind us, no open computer system is 
immune from intrusions. The routing protocols in ad-hoc networks are key 
components yet vulnerable and present special challenges to intrusion 
detection . 

In this thesis, we propose an anomaly detection scheme for existing 
ad-hoc routing protocols. Our approach relies on information from local 
routing data and other reliable local sources. Our approach models the 
temporal/ secjuential characteristics of observations and uses entropy 
analysis for feature selection. Classification algorithms are used to 
compute anomaly detection models. We present case studies on DSR and DSDV 
protocols using the ns-2 simulator. The overall results thus far are very 
encouraging. We discuss how the available information from a routing 
protocol influences anomaly detection performance and attempt to provide 
guidelines on what features we need for anomaly detection. 

Finally, we also discuss several challenging issues and propose our 
future work. 



29/5/6 (Item 1 from file: 434) 

DIALOG (R) File 434 : SciSearch (R) Cited Ref Sci 
(c) 1998 Inst for Sci Info-. All rts . reserv.. 

01918529 Genuine Article* : EN263 Number of References: 0 

(NO REFS KEYED) 

Title: SEQUENTIAL REDUCTION OF EXTERNAL NETWORKS FOR SECURITY -CIRCUIT 
AND SHORT-CIRCUIT MONITOR IN POWER- SYSTEM CONTROL CENTERS 

Author (s) : DIETZE P 

Corporate Source: SIEMENS AG , SYST TECH ENTWICKLUNG/D-8520 ERLANGEN/ /FED REP 
GER/ 

Journal: SIEMENS FORSCHUNGS-UND ENTWICKLUNGSBERICHTE- SIEMENS RESEARCH AND 

DEVELOPMENT REPORTS, 1978, V7 , Nl , P24-27 
Language: GERMAN Document Type: ARTICLE 
Geographic Location: FEDERAL REPUBLIC OF GERMANY 

Subfile: CC ENGI--Current Contents, Engineering, Technology & Applied 
Sciences 

Journal Subject Category: ENGINEERING, ELECTRICAL & ELECTRONIC 



